W7Server - Embedded Linux GSM Router
Posted: Fri Nov 18, 2011 4:16 pm
Hi
I'm quite new to OpenVPN
What I have is a Router with
and
on W7-machine I installed OpenVPN 2.2.1
I already got a working connection using a pointopoint-scenario with secret.key-exchange. I could reach the PC behind the router and the server from there. But (I'm thinking of a bit more komplex scenario) seemingly I'm not able to get a connection exchanging certificates.
this is my server.ovpn
Regards
Eckhard
I'm quite new to OpenVPN
What I have is a Router with
Code: Select all
Linux WILIBOX 2.6.18.8 #1 Mon Feb 21 15:23:28 EET 2011 armv4l unknownCode: Select all
OpenVPN 2.0.9 i686-pc-linux [SSL] [LZO] [EPOLL] built on Feb 21 2011
Developed by James Yonan
Copyright (C) 2002-2005 OpenVPN Solutions LLC <info@openvpn.net>
I already got a working connection using a pointopoint-scenario with secret.key-exchange. I could reach the PC behind the router and the server from there. But (I'm thinking of a bit more komplex scenario) seemingly I'm not able to get a connection exchanging certificates.
this is my server.ovpn
and this is the config that is generated on router sidedev tap
port 1194
proto udp
server-bridge 192.168.111.1 255.255.255.0 192.168.111.5 192.168.111.20
ca "C:\\Program Files (x86)\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files (x86)\\OpenVPN\\config\\server.crt"
key "C:\\Program Files (x86)\\OpenVPN\\config\\server.key"
dh "C:\\Program Files (x86)\\OpenVPN\\config\\dh1024.pem"
keepalive 10 120
route 192.168.111.0 255.255.255.0 192.168.111.1
comp-lzo
persist-key
persist-tun
mute 20
verb 3
this log excerpt is from server (W7PC)# cat /etc/tunnel.vpn1.conf
dev tap0
port 1194
proto udp
client
ca /etc/persistent/ca_cert/ca.crt
cert /etc/persistent/public_cert/client.crt
key /etc/persistent/private_key/client.key
dh /etc/persistent/dh_keys/dh1024.key
remote 213.148.141.229 1194
keepalive 10 120
comp-lzo
persist-key
persist-tun
mute 20
verb 3
and this from client (Linux router)Fri Nov 18 17:08:55 2011 us=356000 Current Parameter Settings:
Fri Nov 18 17:08:55 2011 us=356000 config = 'C:\Program Files (x86)\OpenVPN\config\RUT_Server.ovpn'
Fri Nov 18 17:08:55 2011 us=356000 mode = 1
Fri Nov 18 17:08:55 2011 us=356000 show_ciphers = DISABLED
Fri Nov 18 17:08:55 2011 us=356000 show_digests = DISABLED
Fri Nov 18 17:08:55 2011 us=356000 show_engines = DISABLED
Fri Nov 18 17:08:55 2011 us=356000 genkey = DISABLED
Fri Nov 18 17:08:55 2011 us=356000 key_pass_file = '[UNDEF]'
Fri Nov 18 17:08:55 2011 us=356000 show_tls_ciphers = DISABLED
Fri Nov 18 17:08:55 2011 us=356000 Connection profiles [default]:
Fri Nov 18 17:08:55 2011 us=356000 proto = udp
Fri Nov 18 17:08:55 2011 us=356000 local = '[UNDEF]'
Fri Nov 18 17:08:55 2011 us=356000 local_port = 1194
Fri Nov 18 17:08:55 2011 us=356000 remote = '[UNDEF]'
Fri Nov 18 17:08:55 2011 us=356000 remote_port = 1194
Fri Nov 18 17:08:55 2011 us=356000 remote_float = DISABLED
Fri Nov 18 17:08:55 2011 us=356000 bind_defined = DISABLED
Fri Nov 18 17:08:55 2011 us=356000 bind_local = ENABLED
Fri Nov 18 17:08:55 2011 us=356000 connect_retry_seconds = 5
Fri Nov 18 17:08:55 2011 us=356000 connect_timeout = 10
Fri Nov 18 17:08:55 2011 us=356000 NOTE: --mute triggered...
Fri Nov 18 17:08:55 2011 us=356000 206 variation(s) on previous 20 message(s) suppressed by --mute
Fri Nov 18 17:08:55 2011 us=356000 OpenVPN 2.2.1 Win32-MSVC++ [SSL] [LZO2] built on Jul 1 2011
Fri Nov 18 17:08:55 2011 us=356000 NOTE: when bridging your LAN adapter with the TAP adapter, note that the new bridge adapter will often take on its own IP address that is different from what the LAN adapter was previously set to
Fri Nov 18 17:08:55 2011 us=356000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Fri Nov 18 17:08:55 2011 us=481000 Diffie-Hellman initialized with 1024 bit key
Fri Nov 18 17:08:55 2011 us=481000 TLS-Auth MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Nov 18 17:08:55 2011 us=481000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Fri Nov 18 17:08:55 2011 us=481000 ROUTE default_gateway=192.168.50.202
Fri Nov 18 17:08:55 2011 us=481000 TAP-WIN32 device [LAN-Verbindung 2] opened: \\.\Global\{E0F44100-86FF-43F4-B9AD-AF7B87DC14BC}.tap
Fri Nov 18 17:08:55 2011 us=481000 TAP-Win32 Driver Version 9.8
Fri Nov 18 17:08:55 2011 us=481000 TAP-Win32 MTU=1500
Fri Nov 18 17:08:55 2011 us=481000 Sleeping for 10 seconds...
Fri Nov 18 17:09:05 2011 us=481000 Successful ARP Flush on interface [15] {E0F44100-86FF-43F4-B9AD-AF7B87DC14BC}
Fri Nov 18 17:09:05 2011 us=481000 C:\WINDOWS\system32\route.exe ADD 192.168.111.0 MASK 255.255.255.0 192.168.111.1
Fri Nov 18 17:09:05 2011 us=481000 ROUTE: route addition failed using CreateIpForwardEntry: Das Objekt ist bereits vorhanden. [status=5010 if_index=15]
Fri Nov 18 17:09:05 2011 us=481000 Route addition via IPAPI failed [adaptive]
Fri Nov 18 17:09:05 2011 us=481000 Route addition fallback to route.exe
Fri Nov 18 17:09:05 2011 us=512000 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Fri Nov 18 17:09:05 2011 us=512000 UDPv4 link local (bound): [undef]:1194
Fri Nov 18 17:09:05 2011 us=512000 UDPv4 link remote: [undef]
Fri Nov 18 17:09:05 2011 us=512000 MULTI: multi_init called, r=256 v=256
Fri Nov 18 17:09:05 2011 us=512000 IFCONFIG POOL: base=192.168.111.5 size=16
Fri Nov 18 17:09:05 2011 us=512000 Initialization Sequence Completed
Fri Nov 18 17:09:05 2011 us=512000 MULTI: multi_create_instance called
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 Re-using SSL/TLS context
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 LZO compression initialized
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 Local Options hash (VER=V4): 'f7df56b8'
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 Expected Remote Options hash (VER=V4): 'd79ca330'
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 TLS: Initial packet from 109.46.220.167:1194, sid=f56a9168 16f92ace
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 WRITE [26] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ 0 ] pid=0 DATA len=0
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:05 2011 us=512000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:06 2011 us=183000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:06 2011 us=183000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:07 2011 us=275000 109.46.220.167:1194 UDPv4 WRITE [14] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:08 2011 us=242000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:08 2011 us=242000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:10 2011 us=395000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:10 2011 us=395000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:11 2011 us=736000 109.46.220.167:1194 UDPv4 WRITE [14] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:12 2011 us=547000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:12 2011 us=547000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:13 2011 us=593000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:13 2011 us=593000 109.46.220.167:1194 NOTE: --mute triggered...
Fri Nov 18 17:09:19 2011 us=880000 109.46.220.167:1194 5 variation(s) on previous 20 message(s) suppressed by --mute
Fri Nov 18 17:09:19 2011 us=880000 109.46.220.167:1194 TLS: new session incoming connection from 109.46.220.167:1194
Fri Nov 18 17:09:19 2011 us=880000 109.46.220.167:1194 UDPv4 WRITE [26] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ 0 ] pid=0 DATA len=0
Fri Nov 18 17:09:21 2011 us=518000 109.46.220.167:1194 UDPv4 WRITE [14] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:22 2011 us=110000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:22 2011 us=110000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:24 2011 us=310000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:24 2011 us=310000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:25 2011 us=262000 109.46.220.167:1194 UDPv4 WRITE [14] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:26 2011 us=603000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:26 2011 us=603000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:28 2011 us=881000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:28 2011 us=881000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:31 2011 us=112000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:31 2011 us=112000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:33 2011 us=155000 109.46.220.167:1194 UDPv4 WRITE [14] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:33 2011 us=342000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:33 2011 us=342000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:35 2011 us=402000 109.46.220.167:1194 UDPv4 WRITE [14] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:35 2011 us=745000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:35 2011 us=745000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:09:38 2011 us=54000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:09:38 2011 us=54000 109.46.220.167:1194 NOTE: --mute triggered...
Fri Nov 18 17:10:05 2011 us=26000 109.46.220.167:1194 26 variation(s) on previous 20 message(s) suppressed by --mute
Fri Nov 18 17:10:05 2011 us=26000 109.46.220.167:1194 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Nov 18 17:10:05 2011 us=26000 109.46.220.167:1194 TLS Error: TLS handshake failed
Fri Nov 18 17:10:05 2011 us=26000 109.46.220.167:1194 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Nov 18 17:10:05 2011 us=57000 MULTI: multi_create_instance called
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 Re-using SSL/TLS context
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 LZO compression initialized
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 Local Options hash (VER=V4): 'f7df56b8'
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 Expected Remote Options hash (VER=V4): 'd79ca330'
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 TLS: Initial packet from 109.46.220.167:1194, sid=787783cb 390f2f22
Fri Nov 18 17:10:05 2011 us=57000 109.46.220.167:1194 UDPv4 WRITE [26] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ 0 ] pid=0 DATA len=0
Fri Nov 18 17:10:07 2011 us=101000 109.46.220.167:1194 UDPv4 WRITE [14] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:10:07 2011 us=460000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:10:07 2011 us=460000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:10:08 2011 us=552000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:10:08 2011 us=552000 109.46.220.167:1194 UDPv4 WRITE [22] to 109.46.220.167:1194: P_ACK_V1 kid=0 [ 0 ]
Fri Nov 18 17:10:11 2011 us=32000 109.46.220.167:1194 UDPv4 READ [14] from 109.46.220.167:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Nov 18 17:10:11 2011 us=32000 109.46.220.167:1194 UDPv4 WRITE [26] to 109.46.220.167:1194: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ 0 ] pid=0 DATA len=0
Appreciate any hint.Nov 18 16:37:12 openvpn[668]: Restart pause, 2 second(s)
Nov 18 16:37:14 openvpn[668]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Nov 18 16:37:14 openvpn[668]: Re-using SSL/TLS context
Nov 18 16:37:14 openvpn[668]: LZO compression initialized
Nov 18 16:37:14 openvpn[668]: Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Nov 18 16:37:14 openvpn[668]: Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Nov 18 16:37:14 openvpn[668]: UDPv4 link local (bound): [undef]:1194
Nov 18 16:37:14 openvpn[668]: UDPv4 link remote: 213.148.141.229:1194
Nov 18 16:38:14 openvpn[668]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Nov 18 16:38:14 openvpn[668]: TLS Error: TLS handshake failed
Nov 18 16:38:14 openvpn[668]: TCP/UDP: Closing socket
Nov 18 16:38:14 openvpn[668]: SIGUSR1[soft,tls-error] received, process restarting
Nov 18 16:38:14 openvpn[668]: Restart pause, 2 second(s)
Regards
Eckhard